/*
 * To change this template, choose Tools | Templates
 * and open the template in the editor.
 */
package com.helpdesk.webfilters;

import com.helpdesk.controllers.LoginController;
import com.helpdesk.controllers.util.JsfUtil;
import com.helpdesk.entities.Accounts;
import com.helpdesk.entities.HelpDeskEnums;
import java.io.IOException;
import javax.servlet.Filter;
import javax.servlet.FilterChain;
import javax.servlet.FilterConfig;
import javax.servlet.ServletException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
import javax.servlet.annotation.WebFilter;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;

/**
 *
 * @author JK
 */
@WebFilter(urlPatterns = {"/admin/*"})
public class AdminFilter implements Filter {

    @Override
    public void init(FilterConfig filterConfig) throws ServletException {
    }

    @Override
    public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain) throws IOException, ServletException {
        HttpServletRequest req = (HttpServletRequest) request;
        HttpServletResponse resp = (HttpServletResponse) response;
        HttpSession session = req.getSession(true);
        Accounts acc = (Accounts) session.getAttribute(LoginController.currentUserKey);

        if (acc == null) {
            resp.sendRedirect("../");
        } else {
            if (acc.getRoles() != HelpDeskEnums.UserRoles.Admin) {
                String referer = req.getHeader("referer");
                resp.sendRedirect((referer != null && referer.length() > 0) ? referer : "../");
            } else {
                chain.doFilter(request, response);
            }
        }
    }

    @Override
    public void destroy() {
    }
}
